Chinese Hackers Target European Diplomats with Malware

Chinese cyberespionage group MirrorFace, linked to APT10, targeted a European diplomatic institute using a spear-phishing campaign. The attack deployed the Anel backdoor, previously used by APT10, and employed various evasion techniques to maintain persistence and exfiltrate sensitive data. MirrorFace’s use of Anel and targeting similarities led researchers to reclassify the group as a subgroup of APT10.